Lucene search
+L

2259 matches found

rocky
rocky
added 2026/07/09 6:0 a.m.6 views

389-ds:1.4 security update

An update is available for 389-ds-base, module.389-ds-base. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list 389 Directory Server is an LDAP version 3 LDAPv3...

8.8CVSS6.2AI score0.0067EPSS
Exploits0
osv
osv
added 2026/07/09 6:0 a.m.3 views

RLSA-2026:36201 Important: 389-ds:1.4 security update

389 Directory Server is an LDAP version 3 LDAPv3 compliant server. The base packages include the Lightweight Directory Access Protocol LDAP server and command-line utilities for server administration. Security Fixes: 389-ds-base: 389-ds-base: Heap buffer overflow in sasliorecv via padded SASL...

8.8CVSS6.2AI score0.0067EPSS
Exploits0References3
redhat
redhat
added 2026/07/08 12:25 p.m.6 views

389-ds-base: 389-ds-base: integer overflow in SASL packet length bypasses size limit leading to heap buffer overflow

An integer overflow flaw was found in the SASL I/O layer of 389 Directory Server 389-ds-base. In sasliostartpacket, adding sizeofuint32t to a crafted SASL packet length prefix of 0xFFFFFFFC causes unsigned wraparound to zero, bypassing the nsslapd-maxsasliosize limit and leading to a heap buffer...

7.6CVSS6.2AI score0.0067EPSS
Exploits0References5
redhat
redhat
added 2026/07/08 12:25 p.m.7 views

389-ds-base: 389-ds-base: Heap buffer overflow in sasl_io_recv() via padded SASL UNBIND

A heap buffer overflow flaw was found in the SASL I/O layer of 389 Directory Server 389-ds-base. After a successful SASL bind with integrity protection SSF 0, an authenticated attacker can send a specially crafted oversized LDAP UNBIND packet that is copied into a 512-byte heap receive buffer...

8.8CVSS6.1AI score0.00627EPSS
Exploits0References4
osv
osv
added 2026/07/08 12:6 p.m.2 views

RLSA-2026:36196 Important: 389-ds-base security update

389 Directory Server is an LDAP version 3 LDAPv3 compliant server. The base packages include the Lightweight Directory Access Protocol LDAP server and command-line utilities for server administration. Security Fixes: 389-ds-base: 389-ds-base: Heap buffer overflow in sasliorecv via padded SASL...

8.8CVSS6.2AI score0.0067EPSS
Exploits0References3
rocky
rocky
added 2026/07/08 12:3 p.m.4 views

389-ds-base security update

An update is available for 389-ds-base. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list 389 Directory Server is an LDAP version 3 LDAPv3 compliant server. The ba...

8.8CVSS6.2AI score0.0067EPSS
Exploits0
osv
osv
added 2026/07/08 12:3 p.m.3 views

RLSA-2026:36195 Important: 389-ds-base security update

389 Directory Server is an LDAP version 3 LDAPv3 compliant server. The base packages include the Lightweight Directory Access Protocol LDAP server and command-line utilities for server administration. Security Fixes: 389-ds-base: 389-ds-base: Heap buffer overflow in sasliorecv via padded SASL...

8.8CVSS6.2AI score0.0067EPSS
Exploits0References3
redhat
redhat
added 2026/07/08 11:36 a.m.7 views

Important: Red Hat Security Advisory: 389-ds-base security update

An update for 389-ds-base is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availabl...

8.8CVSS6.2AI score0.0067EPSS
Exploits0References3
osv
osv
added 2026/07/08 11:16 a.m.3 views

DEBIAN-CVE-2026-15041

A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password verification function uses standard memcmp for comparing password hashes instead of a constant-time comparison function. A remote attacker could potentially use timing measurements of LDAP bind attempts to infer partial hash...

3.7CVSS6.1AI score0.003EPSS
Exploits0References1
osv
osv
added 2026/07/08 11:16 a.m.4 views

UBUNTU-CVE-2026-15041

A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password verification function uses standard memcmp for comparing password hashes instead of a constant-time comparison function. A remote attacker could potentially use timing measurements of LDAP bind attempts to infer partial hash...

3.7CVSS6.1AI score0.003EPSS
Exploits0References4
redhat
redhat
added 2026/07/08 10:38 a.m.18 views

Important: Red Hat Security Advisory: Red Hat Directory Server 13.2 container image update

An updated Red Hat Directory Server 13.2 container image for RHEL 10 is now available in the Red Hat container registry, including bug fixes and security patches. Red Hat Directory Server is an LDAPv3-compliant directory server. The image is maintained by Red Hat and updated regularly. To pull th...

8.8CVSS5.9AI score0.0067EPSS
Exploits0References5
euvd
euvd
added 2026/07/08 10:15 a.m.5 views

EUVD-2026-42213

A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password verification function uses standard memcmp for comparing password hashes instead of a constant-time comparison function. A remote attacker could potentially use timing measurements of LDAP bind attempts to infer partial hash...

3.7CVSS5.9AI score0.003EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/07/08 10:15 a.m.7 views

CVE-2026-15041

A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password verification function uses standard memcmp for comparing password hashes instead of a constant-time comparison function. A remote attacker could potentially use timing measurements of LDAP bind attempts to infer partial hash...

3.7CVSS5.9AI score0.003EPSS
Exploits0References3
cvelist
cvelist
added 2026/07/08 10:15 a.m.47 views

CVE-2026-15041 389-ds-base: 389-ds-base: non-constant-time comparison in pbkdf2-sha256 password verification

A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password verification function uses standard memcmp for comparing password hashes instead of a constant-time comparison function. A remote attacker could potentially use timing measurements of LDAP bind attempts to infer partial hash...

3.7CVSS0.003EPSS
Exploits0References2
cve
cve
added 2026/07/08 10:15 a.m.21 views

CVE-2026-15041

The CVE describes a flaw in 389 Directory Server (389-ds-base): non-constant-time comparison in the PBKDF2-SHA256 password verification uses standard memcmp() instead of a constant-time function. This could allow a remote attacker to leverage timing measurements of LDAP bind attempts to infer par...

3.7CVSS5.9AI score0.003EPSS
Exploits0References2Affected Software3
redhatcve
redhatcve
added 2026/07/08 10:15 a.m.5 views

CVE-2026-15041

A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password verification function uses standard memcmp for comparing password hashes instead of a constant-time comparison function. A remote attacker could potentially use timing measurements of LDAP bind attempts to infer partial hash...

3.7CVSS5.9AI score0.003EPSS
Exploits0References3
osv
osv
added 2026/07/08 10:9 a.m.7 views

RHSA-2026:36206 Red Hat Security Advisory: 389-ds:1.4 security update

Bulletin has no description...

8.8CVSS5.9AI score0.01038EPSS
Exploits0References12
osv
osv
added 2026/07/08 10:9 a.m.7 views

RHSA-2026:36201 Red Hat Security Advisory: 389-ds:1.4 security update

Bulletin has no description...

8.8CVSS5.9AI score0.01038EPSS
Exploits0References12
osv
osv
added 2026/07/08 10:9 a.m.7 views

RHSA-2026:36200 Red Hat Security Advisory: redhat-ds:11 security update

Bulletin has no description...

8.8CVSS5.9AI score0.01038EPSS
Exploits0References13
osv
osv
added 2026/07/08 10:9 a.m.5 views

RHSA-2026:36197 Red Hat Security Advisory: 389-ds:1.4 security update

Bulletin has no description...

8.8CVSS5.9AI score0.01038EPSS
Exploits0References12
Rows per page
Query Builder